Hide Forgot
abrt version: 1.1.17 architecture: i686 Attached file: backtrace, 112098 bytes cmdline: eu-unstrip --core=/var/spool/abrt/ccpp-1300559069-2525/coredump -n component: elfutils Attached file: coredump, 446464 bytes crash_function: consider_notes executable: /usr/bin/eu-unstrip kernel: 2.6.35.11-83.fc14.i686 package: elfutils-0.152-1.fc14 rating: 4 reason: Process /usr/bin/eu-unstrip was killed by signal 11 (SIGSEGV) release: Fedora release 14 (Laughlin) time: 1300750732 uid: 500 How to reproduce ----- 1.anything 2. 3.
Created attachment 487426 [details] File: backtrace
Package: elfutils-0.152-1.fc14 Architecture: i686 OS Release: Fedora release 14 (Laughlin) How to reproduce ----- 1.anything 2. 3.
Do you happen to have the /var/spool/abrt/ccpp-1300559069-2525/coredump file still around? Would it be possible to upload it somewhere for us to examine? This occurs in the following while loop: const GElf_Nhdr *nh = notes; while ((const void *) nh < (const void *) notes + filesz) { const void *note_name = nh + 1; [320] const void *note_desc = note_name + NOTE_ALIGN (nh->n_namesz); if (unlikely ((size_t) ((const void *) notes + filesz - note_desc) < nh->n_descsz)) break; if (nh->n_type == NT_GNU_BUILD_ID && nh->n_descsz > 0 && nh->n_namesz == sizeof "GNU" && !memcmp (note_name, "GNU", sizeof "GNU")) { build_id_vaddr = note_desc - (const void *) notes + vaddr; build_id_len = nh->n_descsz; build_id = malloc (nh->n_descsz); if (likely (build_id != NULL)) memcpy (build_id, note_desc, build_id_len); break; } nh = note_desc + NOTE_ALIGN (nh->n_descsz); } On line 320. So I assume nh got corrupted by bad data.
Not enough data to reproduce. f14 is no longer maintained. elfutils-0.153 has been released. please reopen if you can still reproduce this issue.